Blogs hijacked by or created for malicious purposes are nothing new, but previous examples I've seen were generally just for spamming, not malware distribution. There's no real difference though, and the key is that Blogspot is subject to this sort of abuse. Google is slow to recognize such sites and take them down, and perhaps they should be. Much of the time the sites aren't entirely phony, but real sites with real innocent users with malicious posts put up by outsiders through holes in the system.